[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]
Subject: [saml-dev] Web access to the SAML Demo CA
Whee! I managed to get my portable CA set up behind my firewall at home, and a friend to handle dynamic DNS for my DSL line, and we have an on-line CA! The instructions will be the same when we get to Boston on Monday morning; the only change will be the internet address of the host (and possibly the port number). 1. Browse to http://calories.dyn.fywss.com:8006/WebHandler 2. Click on "Register" in the option list (the line just below the Baltimore logo at the top of the page). 3. Click on "OASIS SAML P10" 4. Paste the PEM formatted certificate request into the window. Make sure there is no white space before the "--- BEGIN" line. 5. Click on "Submit" (just below the textarea you pasted into) 6. Review the data on the next screen, extracted from your P10 request. I've been deleting the contents of the "IP Address" field. Ignore the message that the certificate start date must be supplied. 7. Click on "Submit" again (it's below the warnings box) 8. Note the "transaction ID" number 9. Click on "Retrieve" in the option list at the top 10. Click on "My Certificate" 11. Enter your transaction ID into the second input. Leave the first (serial number) and third (Collection passphrase) blank. 12. Click "Submit" 13. Click on the appropriate save option. I've been using "Save as Certificate Chain" to save the .p7b/.p7c files. Or, you can use your browser to generate the keys and certificate requests (if you know how to extract the keys in a useful form later): 3a. Click on "OASIS SAML fill-in form" 4a. Fill in the form. Leave the crypto provider setting alone, unless you know you have special crypto hardware or software set up on your machine. 5a. Click "Submit" 6a. Things get browser dependent here - you may be warned that you're generating a key. Click OK. 7a. Go to step 8 above. You can call my cell phone: +1 416 877 3815 if you have any questions or problems. - irving - ----------------------------------------------------------------------------------------------------------------- The information contained in this message is confidential and is intended for the addressee(s) only. If you have received this message in error or there are any problems please notify the originator immediately. The unauthorised use, disclosure, copying or alteration of this message is strictly forbidden. Baltimore Technologies plc will not be liable for direct, special, indirect or consequential damages arising from alteration of the contents of this message by a third party or as a result of any virus being passed on. This footnote confirms that this email message has been swept for Content Security threats, including computer viruses. http://www.baltimore.com This footnote confirms that this email message has been swept by Baltimore MIMEsweeper for Content Security threats, including computer viruses.
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [Elist Home]
Powered by eList eXpress LLC